I have to use DH structure ( I have no choice ). So I 'll try EVP_PKEY_new()
as Dr. Henson said.
However I 'd like to learn and understand how to verify if DH_generate_key(
) has really set pbkey and pvkey.
ikuzar.
2011/3/24 Mike Mohr <akih...@gmail.com>
> ikuzar,
>
> I'm sorry to be blunt, but if you don't understand what I'm saying
> then you shouldn't be writing code that deals with low-level
> cryptographic objects/primitives. See the recent revelations from
> Sony and Nokia for why: even multinational corporations with hundreds
> of specialist developers can all too easily ship "epic failboat" code.
> As Dr. Henson has already pointed out you should use the subroutines
> that OpenSSL provides to you.
>
> On Wed, Mar 23, 2011 at 4:50 PM, ikuzar <razuk...@gmail.com> wrote:
> > I do not understand what you mean.
> >
> > 1) I tried to print data's size returned by i2d_DHparams(const_dh,
> > &dhbuf); without computing private nor public key. I have got 138 bytes.
> > Then I remade the same operation but I had computed private and public
> key
> > using DH_generate_key(dh);
> > and I have still got 138 bytes ...it seems to be odd for me, because I
> think
> > dh's size must be greater after computing keys.
> >
> > 2) I tried the following check before and after computing keys :
> > if (dh->priv_key == NULL)
> > printf("\n1)dh->priv_key is NULL\n");
> > else
> > printf("\n1)dh->priv_key is not NULL\n");
> > Before computing key, I have got priv_key is NULL. After computing,
> priv_key
> > is not NULL
> >
> > I 'm wondering what happens... could you tell me more about bit counting
> ? I
> > do not understand "The private and public keys should be similar in size
> to
> > p. "
> >
> > Thanks for your help.
> >
> >
> > 2011/3/23 Mike Mohr <akih...@gmail.com>
> >>
> >> Try checking the bit count of the structure members. The private and
> >> public keys should be similar in size to p.
> >>
> >> On Mar 23, 2011 10:27 AM, "ikuzar" <razuk...@gmail.com> wrote:
> >> > Hello,
> >> > I 'd like to know how to verify that DH private and public key have
> been
> >> > generated ?
> >> > In my DH struct, p and g had been generated with commands line (
> openssl
> >> > dhparam... )
> >> >
> >> > struct
> >> > {
> >> > BIGNUM *p; // prime number (shared)
> >> > BIGNUM *g; // generator of Z_p (shared)
> >> > BIGNUM *priv_key; // private DH value x
> >> > BIGNUM *pub_key; // public DH value g^x
> >> > // ...
> >> > };
> >> > DH
> >> >
> >> >
> >> > Priv_key and pub_key are generated later with DH_generate_key(dh).
> >> >
> >> > I would like verify if DH_generate_key( ) has generated the priv_key (
> >> > an
> >> > human proof, example by using DHparams_print_fp(fp, dh ); ) I used
> this
> >> > function but it did not print private key into file pointed by fp.
> >> >
> >> > Thanks for your help.
> >
> >
> ______________________________________________________________________
> OpenSSL Project http://www.openssl.org
> User Support Mailing List openssl-users@openssl.org
> Automated List Manager majord...@openssl.org
>
